InfoSec Program Fundamentals

InfoSec Program Fundamentals

December 7 - December 8

In this onsite workshop, FRSecure will provide an overview of general Information Security Best Practices, policy and program templates outlining best practices, considerations and options for each one. Attendees will have time to draft their own customized policies during this 2-day workshop. This workshop is intended for anyone responsible for the information security program and policies within an organization. This could include Information Security Officers, IT Managers and Compliance Officers.

At the end of this session, each attendee will have:

A basic understanding of overall information security practices and their importance

An understanding of standard information security policies

Best practices, options, risks and recommendations

Policy and Information Security Program Templates

Draft policies completed by the attendee

Voice over PowerPoint recording of Information Security: Keeping Personal and Corporate Data Secure; a one hour training program that covers a variety of topics related to the ethical and professional responsibilities companies face in protecting sensitive data

Follow up policy coaching at a reduced cost

The topics covered include:

Information Security Overview

Information Security Program Charter

Information Security Policy

Acceptable Use

Access Control

Asset Management

Audit & Logging

Authentication

Change Control

Cloud Security

Disaster Recovery

Encryption Management

Incident Management

Information Classification & Handling

Information Security

Network Configuration

Personnel Security

Physical Security

Risk Management

Security Training & Awareness

System Development & Acceptance

Vendor Management

Vulnerability Management

Other supporting documentation templates that may be provided or reviewed include: